Appl. No. 09/998,893 PATENT 
Amdt. dated April 7, 2008 

Amendment under 37 CFR 1.116 Expedited Procedure 
Examining Group 2137 

Amendments to the Claims: 

This listing of claims will replace all prior versions, and listings, of claims in the 

application: 

Listing of Claims: 

1. (Previously Presented) A method comprising: 

receiving at an Identity System a request for a certificate related action for a user 
wherein the certificate related action is selected from a group consisting of a certificate 
enrollment action, a certificate renewal action, and a certificate revocation action; and 

retrieving by the Identity System a workflow for responding to said request from 
a set of workflows, wherein said set of workflows includes a plurality of workflows for 
responding to said certificate related action, wherein each workflow in said plurality of 
workflows corresponds to a different set of characteristics for a user, wherein said workflow for 
responding to said request corresponds to said certificate related action and a set of 
characteristics for said user from an identity profile maintained by the Identity System, the set of 
characteristics including a user type, and wherein retrieving the workflow further comprises 
selecting the workflow from the plurality of workflows based on the requested certificate related 
action and the user type. 

2. (Canceled) 

3. (Previously Presented) The method of claim 1, wherein a first workflow 
in said plurality of workflows contains a first set of directives and a second workflow in said 
plurality of workflows contains a second set of directives, wherein said first set of directives is 
different from said second set of directives. 
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4. (Original) The method of claim 3, wherein said certificate related action 
is a certificate enrollment action, wherein said first workflow in said plurality of workflows calls 
for obtaining an approval before issuing a certificate and wherein said second workflow in said 
plurality of workflows does not call for obtaining an approval before issuing a certificate. 

5. (Original) The method of claim 3, wherein said certificate related action 
is a certificate renewal action, wherein said first workflow in said plurality of workflows calls for 
retrieving an approval before renewing a certificate and wherein said second workflow in said 
plurality of workflows does not call for retrieving an approval before renewing a certificate. 

6. (Previously Presented) The method of claim 3, wherein said certificate 
related action is a certificate revocation action. 

7. (Previously Presented) The method of claim 3, further comprising: 
receiving said plurality of workflows. 

8. (Previously Presented) The method of claim 1, further comprising: 
performing said workflow, wherein performing said workflow comprises: 

retrieving an approval response; and 
obtaining a certificate. 

9. (Previously Presented) The method of claim 8, further comprising: 
receiving a second request for a second certificate related action for a second user; 
retrieving a second workflow for responding to said second request from said set 

of workflows, wherein said second workflow corresponds to said second certificate related 
action and a set of characteristics for said second user; and 

performing said second workflow, wherein performing said second workflow 

comprises: 

obtaining a second certificate without retrieving an approval response. 



OID-2005-162-14 



Page 3 of 20 



Appl. No. 09/998,893 
Amdt. dated April 7, 2008 

Amendment under 37 CFR 1.116 Expedited Procedure 
Examining Group 2137 



PATENT 



10. (Original) The method of claim 9, wherein said certificate related action 
is a certificate enrollment action and said second certificate related action is a certificate 
enrollment action. 

1 1 . (Original) The method of claim 9, wherein said certificate related action 
is a certificate renewal action and said second certificate related action is a certificate renewal 
action. 

12. (Previously Presented) The method of claim 1, further comprising: 
performing said workflow, wherein said certificate related action is a certificate 

enrollment action and wherein performing said workflow comprises: 

obtaining a certificate, wherein obtaining the certificate comprises 
authenticating said user; 

forwarding said request to a Certificate Processing Server; 
receiving said certificate; and 
storing said certificate. 

13. (Previously Presented) The method of claim 1, further comprising: 
performing said workflow, wherein said certificate related action is a certificate 

renewal action and wherein performing said workflow comprises: 

obtaining a certificate renewal, wherein obtaining the certificate renewal 

comprises: 

authenticating said user; 

forwarding said request to a Certificate Processing Server; 
receiving a certificate renewal acknowledgement. 

14. (Previously Presented) The method of claim 1, further comprising: 
performing said workflow, wherein said certificate related action is a certificate 

revocation action and wherein performing said workflow comprises: 

revoking a certificate, wherein revoking the certificate comprises: 
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authenticating said user; and 

forwarding said request to a Certificate Processing Server. 

15. (Canceled) 

16. (Previously Presented) One or more processor readable storage devices 
having processor readable code embodied on said processor readable storage devices, said 
processor readable code for programming one or more processors to perform a method 
comprising: 

receiving at an Identity System a request for a certificate related action for a user 
wherein the certificate related action is selected from a group consisting of a certificate 
enrollment action, a certificate renewal action, and a certificate revocation action; and 

retrieving by the Identity System a workflow for responding to said request from 
a set of workflows, wherein said set of workflows includes a plurality of workflows for 
responding to said certificate related action wherein each workflow in said plurality of 
workflows corresponds to a different set of characteristics for a user wherein said workflow for 
responding to said request corresponds to said certificate related action and a set of 
characteristics for said user from an identity profile maintained by the Identity System, the set of 
characteristics including a user type, and wherein retrieving the workflow further comprises 
selecting the workflow from the plurality of workflows based on the requested certificate related 
action and the user type. 

17. (Canceled) 

18. (Previously Presented) One or more processor readable storage devices 
according to claim 16, wherein a first workflow in said plurality of workflows contains a first set 
of directives and a second workflow in said plurality of workflows contains a second set of 
directives, wherein said first set of directives is different from said second set of directives. 
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19. (Original) One or more processor readable storage devices according to 
claim 18, wherein said certificate related action is a certificate enrollment action, wherein said 
first workflow in said plurality of workflows calls for obtaining an approval before issuing a 
certificate and wherein said second workflow in said plurality of workflows does not call for 
obtaining an approval before issuing a certificate. 

20. (Previously Presented) One or more processor readable storage devices 
according to claim 18, wherein said method further comprises: 

receiving said plurality of workflows. 

21 . (Previously Presented) One or more processor readable storage devices 
according to claim 16, wherein said method further comprises: 

performing said workflow, wherein performing said workflow comprises: 
retrieving an approval response; and 
obtaining a certificate; 
receiving a second request for a second certificate related action for a second user; 
retrieving a second workflow for responding to said second request from said set 
of workflows, wherein said second workflow corresponds to said second certificate related 
action and a set of characteristics for said second user; and 

performing said second workflow, wherein performing said second workflow 

comprises: 

obtaining a second certificate without retrieving an approval response. 

22. (Original) One or more processor readable storage devices according to 
claim 21, wherein said certificate related action is a certificate enrollment action and said second 
certificate related action is a certificate enrollment action. 

23. (Previously Presented) One or more processor readable storage devices 
according to claim 16, wherein said method further comprises: 
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performing said workflow, wherein said certificate related action is a certificate 
enrollment action and wherein performing said workflow comprises: 

obtaining a certificate, wherein obtaining the certificate comprises: 
authenticating said user; 

forwarding said request to a Certificate Processing Server; 
receiving said certificate; and 
storing said certificate. 

24. (Previously Presented) One or more processor readable storage devices 
according to claim 16, wherein said method further comprises: 

performing said workflow, wherein said certificate related action is a certificate 
renewal action and wherein performing said workflow comprises: 

obtaining a certificate, wherein obtaining the certificate comprises 
authenticating said user; 

forwarding said request to a Certificate Processing Server; and 
receiving a certificate renewal acknowledgement. 

25. (Previously Presented) One or more processor readable storage devices 
according to claim 16, wherein said method further comprises: 

performing said workflow, wherein said certificate related action is a certificate 
revocation action and wherein performing said workflow comprises: 

revoking a certificate, wherein revoking the certificate comprises: 
authenticating said user; and 

forwarding said request to a Certificate Processing Server. 

26. (Canceled) 

27. (Previously Presented) An apparatus comprising: 
one or more communications interfaces; 

one or more storage devices; and 
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one or more processors in communication with said one or more storage devices 
and said one or more communication interfaces, said one or more processors perform a method 
comprising: 

receiving at an Identity System a request for a certificate related action for a user 
wherein the certificate related action is selected from a group consisting of a certificate 
enrollment action, a certificate renewal action, and a certificate revocation action; and 

retrieving by the Identity System a workflow for responding to said request from 
a set of workflows, wherein said set of workflows includes a plurality of workflows for 
responding to said certificate related action wherein each workflow in said plurality of 
workflows corresponds to a different set of characteristics for a user wherein said workflow for 
responding to said request corresponds to said certificate related action and a set of 
characteristics for said user from an identity profile maintained by the Identity System, the set of 
characteristics including a user type, and wherein retrieving the workflow further comprises 
selecting the workflow from the plurality of workflows based on the requested certificate related 
action and the user type. 

28. (Canceled) 

29. (Previously Presented) The apparatus of claim 27, wherein a first 
workflow in said plurality of workflows contains a first set of directives and a second workflow 
in said plurality of workflows contains a second set of directives, wherein said first set of 
directives is different from said second set of directives. 

30. (Original) The apparatus of claim 29, wherein said certificate related 
action is a certificate enrollment action, wherein said first workflow in said plurality of 
workflows calls for obtaining an approval before issuing a certificate and wherein said second 
workflow in said plurality of workflows does not call for obtaining an approval before issuing a 
certificate. 
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3 1 . (Previously Presented) The apparatus of claim 29, wherein said method 
further comprises: 

receiving said plurality of workflows. 

32. (Previously Presented) The apparatus of claim 27, wherein said method 
further comprises: 

performing said workflow, wherein performing said workflow comprises: 
retrieving an approval response; and 
obtaining a certificate; 
receiving a second request for a second certificate related action for a second user; 
retrieving a second workflow for responding to said second request from said set 
of workflows, wherein said second workflow corresponds to said second certificate related 
action and a set of characteristics for said second user; and 

performing said second workflow, wherein performing said second workflow 

comprises: 

obtaining a second certificate without retrieving an approval response. 

33. (Original) The apparatus of claim 32, wherein said certificate related 
action is a certificate enrollment action and said second certificate related action is a certificate 
enrollment action. 

34. (Previously Presented) The apparatus of claim 27, wherein said method 
further comprises: 

performing said workflow, wherein said certificate related action is a certificate 
enrollment action and wherein performing said workflow comprises: 

obtaining a certificate, wherein obtaining the certificate comprises: 
authenticating said user; 

forwarding said request to a Certificate Processing Server; 
receiving said certificate; and 
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storing said certificate. 

35. (Previously Presented) The apparatus of claim 27, wherein said method 
further comprises: 

performing said workflow, wherein said certificate related action is a certificate 
renewal action and wherein performing said workflow comprises: 

obtaining a certificate, wherein obtaining the certificate comprises: 
authenticating said user; 

forwarding said request to a Certificate Processing Server; and 
receiving a certificate renewal acknowledgement. 

36. (Previously Presented) The apparatus of claim 27, wherein said method 
further comprises: 

performing said workflow, wherein said certificate related action is a certificate 
revocation action and wherein performing said workflow comprises: 

revoking a certificate, wherein revoking the certificate comprises: 
authenticating said user; and 

forwarding said request to a Certificate Processing Server. 

37. (Canceled) 

38. (Previously Presented) A method comprising: 
receiving a request for a certificate related action for a user; and 
retrieving a workflow for responding to said request from a set of workflows, 

wherein said workflow corresponds to said certificate related action and a 
set of characteristics for said user, 

wherein said set of workflows includes a plurality of workflows for 
responding to said certificate related action, 

wherein each workflow in said plurality of workflows corresponds to a 
different set of characteristics for a user, and 



OID-2005-162-14 



Page 10 of 20 



Appl. No. 09/998,893 PATENT 
Amdt. dated April 7, 2008 

Amendment under 37 CFR 1.116 Expedited Procedure 
Examining Group 2137 

wherein retrieving the workflow for responding to said request further 
comprises selecting the workflow from the plurality of workflows based on the requested 
certificate related action and a user type of the user. 

39. (Previously Presented) The method of claim 38, further comprising: 
receiving said plurality of workflows. 

40. (Previously Presented) The method of claim 38, further comprising: 
performing said workflow, wherein performing said workflow comprises: 

retrieving an approval response; and 
obtaining a certificate; 
receiving a second request for a second certificate related action for a second user; 
retrieving a second workflow for responding to said second request from said set 
of workflows, wherein said second workflow corresponds to said second certificate related 
action and a set of characteristics for said second user; and 

performing said second workflow, wherein performing said second workflow 

comprises: 

obtaining a second certificate without retrieving an approval response. 

41 . (Original) The method of claim 40, wherein said certificate related action 
and said second certificate related action call for the same certificate related action. 

42. (Previously Presented) The method of claim 40, wherein receiving the 
request, retrieving the workflow, performing the workflow, receiving the second request, 
retrieving the second workflow, and performing the second workflow are performed by an 
Identity System in communication with an Access System. 

43. (Previously Presented) One or more processor readable storage devices 
having processor readable code embodied on said processor readable storage devices, said 
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processor readable code for programming one or more processors to perform a method 
comprising: 

receiving a request for a certificate related action for a user; and 

retrieving a workflow for responding to said request from a set of workflows, 

wherein said workflow corresponds to said certificate related action and a 
set of characteristics for said user, 

wherein said set of workflows includes a plurality of workflows for 
responding to said certificate related action, 

wherein each workflow in said plurality of workflows corresponds to a 
different set of characteristics for a user, and 

wherein retrieving the workflow for responding to said request further 
comprises selecting the workflow from the plurality of workflows based on the requested 
certificate related action and a user type of the user. 

44. (Previously Presented) One or more processor readable storage devices 
according to claim 43, wherein said method further comprises: 

receiving said plurality of workflows. 

45. (Previously Presented) One or more processor readable storage devices 
according to claim 43, wherein said method further comprises: 

performing said workflow, wherein performing said workflow comprises: 
retrieving an approval response; and 
obtaining a certificate; 
receiving a second request for a second certificate related action for a second user; 
retrieving a second workflow for responding to said second request from said set 
of workflows, wherein said second workflow corresponds to said second certificate related 
action and a set of characteristics for said second user; and performing said second workflow 
comprises: 

obtaining a second certificate without retrieving an approval response. 



OID-2005-162-14 



Page 12 of 20 



Appl. No. 09/998,893 PATENT 
Amdt. dated April 7, 2008 

Amendment under 37 CFR 1.116 Expedited Procedure 
Examining Group 2137 

46. (Original) One or more processor readable storage devices according to 
claim 45, wherein said certificate related action and said second certificate related action call for 
the same certificate related action. 

47. (Previously Presented) One or more processor readable storage devices 
according to claim 45, wherein receiving the request, retrieving the workflow, performing the 
workflow, receiving the second request, retrieving the second workflow, and performing the 
second workflow are performed by an Identity System in communication with an Access 
System. 

48. (Previously Presented) An apparatus comprising: 
one or more communications interfaces; 

one or more storage devices; and 

one or more processors in communication with said one or more storage devices 
and said one or more communication interfaces, said one or more processors perform a method 
comprising: 

receiving a request for a certificate related action for a user; and 
retrieving a workflow for responding to said request from a set of 

workflows, 

wherein said workflow corresponds to said certificate related action and a 
set of characteristics for said user, 

wherein said set of workflows includes a plurality of workflows for 
responding to said certificate related action, 

wherein each workflow in said plurality of workflows corresponds to a 
different set of characteristics for a user, and 

wherein retrieving the workflow for responding to said request further 
comprises selecting the workflow from the plurality of workflows based on the requested 
certificate related action and a user type of the user. 
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49. (Previously Presented) The apparatus of claim 48, wherein said method 
further comprises: 

receiving said plurality of workflows. 

50. (Previously Presented) The apparatus of claim 48, wherein said method 
further comprises: 

performing said workflow, wherein performing said workflow comprises: 
retrieving an approval response; and 
obtaining a certificate; 
receiving a second request for a second certificate related action for a second user; 
retrieving a second workflow for responding to said second request from said set 
of workflows, wherein said second workflow corresponds to said second certificate related 
action and a set of characteristics for said second user; and 

performing said second workflow, wherein performing said second workflow 

comprises: 

obtaining a second certificate without retrieving an approval response. 

5 1 . (Original) The apparatus of claim 50, wherein said certificate related 
action and said second certificate related action call for the same certificate related action. 

52. (Previously Presented) The apparatus of claim 50, wherein receiving the 
request, retrieving the workflow, performing the workflow, receiving the second request, 
retrieving the second workflow, and performing the second workflow are performed by an 
Identity System in communication with an Access System. 
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